CISA Warns of Active Exploitation of Severe GitLab Password Reset Vulnerability -

CISA Warns of Active Exploitation of Severe GitLab Password Reset Vulnerability

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a critical flaw impacting GitLab to its Known Exploited Vulnerabilities (KEV) catalog, owing to active exploitation in the wild. Tracked as CVE-2023-7028 (CVSS score: 10.0), the maximum severity vulnerability could facilitate account takeover by sending password reset emails to an unverified email

May 2, 2024

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a critical flaw impacting GitLab to its Known Exploited Vulnerabilities (KEV) catalog, owing to active exploitation in the wild.
Tracked as CVE-2023-7028 (CVSS score: 10.0), the maximum severity vulnerability could facilitate account takeover by sending password reset emails to an unverified email

CISA Warns of Active Exploitation of Severe GitLab Password Reset Vulnerability

Leave a Reply Cancel reply

Related Posts

Microsoft Sues Hacking Group Exploiting Azure AI for Harmful Content Creation

DoJ Indicts Three Russians for Operating Crypto Mixers Used in Cybercrime Laundering

AI-Driven Ransomware FunkSec Targets 85 Victims Using Double Extortion Tactics